using System;
using System.Collections;
using System.ComponentModel;
using System.Data;
using System.Data.SqlClient;//
using System.Drawing;
using System.Web;
using System.Web.SessionState;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.HtmlControls;
namespace SampleCS.Reply
{
///
/// Reply¿¡ ´ëÇÑ ¿ä¾à ¼³¸íÀÔ´Ï´Ù.
///
public class Reply : System.Web.UI.Page
{
protected System.Web.UI.WebControls.TextBox txtName;
protected System.Web.UI.WebControls.RequiredFieldValidator RequiredFieldValidator1;
protected System.Web.UI.WebControls.TextBox txtEmail;
protected System.Web.UI.WebControls.RegularExpressionValidator RegularExpressionValidator1;
protected System.Web.UI.WebControls.TextBox txtHomepage;
protected System.Web.UI.WebControls.RegularExpressionValidator RegularExpressionValidator2;
protected System.Web.UI.WebControls.TextBox txtTitle;
protected System.Web.UI.WebControls.RequiredFieldValidator Requiredfieldvalidator2;
protected System.Web.UI.WebControls.TextBox txtContent;
protected System.Web.UI.WebControls.RequiredFieldValidator RequiredFieldValidator3;
protected System.Web.UI.WebControls.RadioButtonList rdoEncoding;
protected System.Web.UI.WebControls.TextBox txtPassword;
protected System.Web.UI.WebControls.RequiredFieldValidator Requiredfieldvalidator5;
protected System.Web.UI.WebControls.Button btnWrite;
protected System.Web.UI.WebControls.Button btnList;
protected System.Web.UI.WebControls.ValidationSummary ValidationSummary1;
private void Page_Load(object sender, System.EventArgs e)
{
if(this.IsPostBack != true)
{
SqlConnection objCon = new SqlConnection();
objCon.ConnectionString = Application["CONNECTION_STRING"].ToString();
objCon.Open();
SqlCommand objCmd = new SqlCommand();
objCmd.Connection = objCon;
objCmd.CommandText = "Select * From Reply Where Num = " + Request.QueryString["Num"].ToString();
objCmd.CommandType = CommandType.Text;
SqlDataReader objDr = objCmd.ExecuteReader();
if(objDr.Read())
{
txtTitle.Text = "Re : " + objDr["Title"].ToString();
txtContent.Text = objDr["Content"].ToString();
txtContent.Text += "\n--------´äº¯ Çϱâ--------\n";
}
objDr.Close();
objCon.Close();
}
}
#region Web Form Designer generated code
override protected void OnInit(EventArgs e)
{
//
// CODEGEN: ÀÌ È£ÃâÀº ASP.NET Web Form µðÀÚÀ̳ʿ¡ ÇÊ¿äÇÕ´Ï´Ù.
//
InitializeComponent();
base.OnInit(e);
}
///
/// µðÀÚÀÌ³Ê Áö¿ø¿¡ ÇÊ¿äÇÑ ¸Þ¼µåÀÔ´Ï´Ù.
/// ÀÌ ¸Þ¼µåÀÇ ³»¿ëÀ» ÄÚµå ÆíÁý±â·Î ¼öÁ¤ÇÏÁö ¸¶½Ê½Ã¿À.
///
private void InitializeComponent()
{
this.btnWrite.Click += new System.EventHandler(this.btnWrite_Click);
this.btnList.Click += new System.EventHandler(this.btnList_Click);
this.Load += new System.EventHandler(this.Page_Load);
}
#endregion
private void btnList_Click(object sender, System.EventArgs e)
{
Response.Redirect("List.aspx");
}
private void btnWrite_Click(object sender, System.EventArgs e)
{
int intRef = Convert.ToInt32(Request.QueryString["Ref"]);//
int intStep = Convert.ToInt32(Request.QueryString["Step"]);//
int intRefOrder = Convert.ToInt32(Request.QueryString["RefOrder"]);//
SqlConnection objCon = new SqlConnection();
objCon.ConnectionString = Application["CONNECTION_STRING"].ToString();
objCon.Open();
string strName = txtName.Text.Replace("&", "&").Replace("<", "<").Replace(">", ">");
string strTitle = txtTitle.Text.Replace("&", "&").Replace("<", "<").Replace(">", ">");
SqlCommand objCmd = new SqlCommand();
objCmd.Connection = objCon;
objCmd.CommandText = "Update Reply Set RefOrder = RefOrder + 1" + " "
+ " Where Ref = " + intRef.ToString() + " And RefOrder > " + intRefOrder.ToString();
objCmd.CommandType = CommandType.Text;
objCmd.ExecuteNonQuery();
objCmd.CommandText = "procReplyReply";
objCmd.Parameters.Add("@Name", SqlDbType.VarChar, 25);
objCmd.Parameters.Add("@Email", SqlDbType.VarChar, 100);
objCmd.Parameters.Add("@Title", SqlDbType.VarChar, 150);
objCmd.Parameters.Add("@PostIP", SqlDbType.VarChar, 15);
objCmd.Parameters.Add("@Content", SqlDbType.Text);
objCmd.Parameters.Add("@Password", SqlDbType.VarChar, 20);
objCmd.Parameters.Add("@Encoding", SqlDbType.VarChar, 10);
objCmd.Parameters.Add("@Homepage", SqlDbType.VarChar, 100);
objCmd.Parameters.Add("@Ref", SqlDbType.Int);//Ref : ÂüÁ¶±Û ¹øÈ£
objCmd.Parameters.Add("@Step", SqlDbType.Int);//Step : µé¿©¾²±â
objCmd.Parameters.Add("@RefOrder", SqlDbType.Int);//RefOrder : ´ä±Û ¼ø¼
objCmd.Parameters["@Name"].Value = txtName.Text;
objCmd.Parameters["@Email"].Value = txtEmail.Text;
objCmd.Parameters["@Title"].Value = txtTitle.Text;
objCmd.Parameters["@PostIP"].Value = Request.UserHostAddress;
objCmd.Parameters["@Content"].Value = txtContent.Text;
objCmd.Parameters["@Password"].Value = txtPassword.Text;
objCmd.Parameters["@Encoding"].Value = rdoEncoding.SelectedItem.Text;
objCmd.Parameters["@Homepage"].Value = txtHomepage.Text;
objCmd.Parameters["@Ref"].Value = intRef;//´äº¯±ÛÀº ºÎ¸ð±ÛÀÇ Ref¸¦ ±×´ë·Î µû¶ó°£´Ù.
objCmd.Parameters["@Step"].Value = intStep + 1;
objCmd.Parameters["@RefOrder"].Value = intRefOrder +1;
objCmd.CommandType = CommandType.StoredProcedure;
objCmd.ExecuteNonQuery();
objCon.Close();
Response.Redirect("./List.aspx");
}
}
}